rssh 2.2.2 and previous versions does not properly restrict programs that can be run, which could allow remote authenticated users to bypass intended access restrictions and execute arbitrary programs via (1) rdist -P, (2) rsync, or (3) scp -S.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rssh rssh 2.2.1 |
||
rssh rssh 2.2.2 |
||
rssh rssh 2.0 |
||
rssh rssh 2.1 |
||
rssh rssh 2.2 |
||
gentoo linux |